Mikrotik + pfsense
-
This is possible. Install pfSense and configure your single NIC as the WAN. You won't be able to use transparent mode with the proxy, only explicit mode. That means you will either have to configure WPAD, or manually set the proxy for all of your LAN clients.
-
-
Thats the question , im new with that networks .
I ask for one tutorial or help because i dont know how take it , if you know something or you saw one post about this configuration . I tell you that the Indonesian post its the only "data" that i have for mikrotik + pfsense . -
-
I watched it , but i need it with one mikrotik , sooo thats the same post.
How can i place it together and make it work, thats the question.
I know that it works because i saw it , but not one tutorial . -
This is not a new scenario ,most of time you need to "redirect" the traffict that goes to the ports 80/443 to the PFSense that must be connected to a DMZ or some like this on your Mikrotik Firewall.
Other aproach is to setup manualy or with a WPAD file your clients to navigate via the Proxy on the PFSense Box.
You need to do a try and fail process if you do not have the full answer. Is very similar to user thunder cache or other cache solutions.
Regards.
-
Thankss mate , i try it .
-
@elementhelios Dear, did you get the solution to integrate mikrotik with pfsense? I'm searching for the same solution and I still have not tried it.
-
So just trying to use pfSense as a Squid proxy?
Transparently or clients pointing at it directly?
Steve
-
I have a Mikrotik router/switch. I set it up this way with excellent results:
[ISP Gear]<--->[pfSense]<--->[Mikrotik]<--->LAN
The Mikrotik is set up as a bridged switch in this configuration. There is no need to set up the Mikrotik as a router at all.
-
@stephenw10 Exactly, I want pfsense only as a proxy. Matting Mikrotik as the main router, because I have specific settings in it.
-
Well that's no problem, just install pfSense with one interface and install Squid on it. Though you might consider running Squid just on FreeBSD instead if you don't need everything else that pfSense brings.
If you want to run transparently you need port forwards in Mikrotik to redirect traffic to it. Otherwise you need to configure clients to use it directly.
Steve
